cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP Fiori: My Spend, csrf-token error

Go to solution
Former Member

on ‎10-29-2013 4:49 PM

0 Kudos

When testing the My Spend application we get the following error:

Is it possible this is an error within Fiori itself, that got solved by a SAP note? In that case, which SAP note?

When simulating the request with the use of a REST client, i was able to get a 202 Accepted (after adding a csrf token ofcourse).

Any ideas on how to fix this?

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

gilbert_wong
Advisor
Advisor
‎11-13-2013 10:13 PM
0 Kudos

Hi All,

I am having the same issue with the standard MySpend Application.  I have applied the latest SAPUI5 to 1.14.6 and still get the same error.  Not sure what is causing this issue.  My other Fiori apps work fine.  Just the MySpend application.         

Thanks,

GW

EDIT:  I finally got it working.  After applying the latest SAPUI5 1.14.6, I had to invalidate the ITS cache using transaction SITSPMON.  Once I did that, it finally worked and I got pass the CSRF token validation error.

I believe the fix is in 1.14.3, but I went ahead and applied the latest SAPUI5.

Show replies
Show replies
Former Member
‎11-15-2013 2:35 PM
0 Kudos

Thnx man, this cleared my error too.

Cheers!

swethapadma_oleti
Explorer
‎11-28-2013 3:57 PM
0 Kudos

Hi Nico,

I am also facing this issue. I was happy to see that there is a solution for this.

Can you please tell me how to apply the latest SAPUI5 1.14.6 ?

and how to I invalidate the ITS cache?

Thanks,

Swetha

jcgood25
Active Contributor
‎11-28-2013 11:43 PM
0 Kudos

Check out:

Regards,

Jeremy

SAP Rapid Innovation Group - RIG

Former Member
‎11-29-2013 7:17 AM
0 Kudos

Hey Swetha

The link Jeremy provided is correct.

You should be fine when completing those steps.

Kind Regards,

Nico

Answers (2)

Answers (2)

Vlad
Advisor
Advisor
‎11-05-2013 8:23 AM
0 Kudos

Hello Nico,

I have found the same error, and currently investigating it. If I have any progress on the issue, I will let you know.

Kind regards,

Vlad

Show replies
Show replies
jamie_cawley
Advisor
Advisor
‎11-05-2013 1:53 PM
0 Kudos

I would recommend updating the UI5 version to the latest, there has been some fixes regarding batch token handling since SP00.  I can confirm that this issue does not exist in SP05.

Regards,

Jamie

SAP - Rapid Innovation Group

Vlad
Advisor
Advisor
‎11-06-2013 4:09 PM
0 Kudos

Hello Jamie,

The SAP_UI component has the version 740, SP04. Which NetWeaver ABAP version are you using?

Kind regards,

Vlad

jamie_cawley
Advisor
Advisor
‎11-06-2013 4:30 PM
0 Kudos

I'm referring to the UISAPUI5 component, which I have tested this against SP05.

Regards,

Jamie

SAP - Rapid Innovation Group

Former Member
‎11-07-2013 8:00 AM
0 Kudos

I'm gonna try to update to UI5 SP05, hopefully it will solve the problem.

I'll let you guys know, but it might take a while since I'm not the one to decide about updates.

EDIT: It didn't help. SAPUI5 is at version 1.14.2 now, but the token error remains.

Thnx for your help so far!

Vlad
Advisor
Advisor
‎11-07-2013 12:00 PM
0 Kudos

Hello Nico,

There is another note which includes the CSRF token for batch requests fix:

0001914663 - SAPUI5 update to version 1.14.3

Can you please check it?

    • [FIX] ODataModel: fix token handling when using BATCH

Kind regards,

Vlad

Former Member
‎10-30-2013 2:46 AM
0 Kudos

Hi Nico,

Could you please describe what kind of HTTP request are you trying to perform.

Also in the meantime , you could try the following steps:

1. Try making a request directly to the backend gateway by fetching the csrf-token via GET request.

2.Clear the browser cookies and try to make a request .

Hope this information helps.

Regards,

Latha

Show replies
Show replies
Former Member
‎10-30-2013 7:03 AM
0 Kudos

The request is a $batch POST operation.

The thing is, it is one of the standard applications that come with SAP Fiori, and not a custom app.

That's why I'm clueless on how to solve this.

If it were my own code, I could indeed add a GET to fetch the csrf-token.

jamie_cawley
Advisor
Advisor
‎10-30-2013 12:05 PM
0 Kudos

What version/build of My Spend and SAPUI5 are you using?  Click the gear, About SAP Fiori for the information.  Does this happen as soon as you open the app or is there a process to this, please explain? 

Regards,

Jamie

SAP - Rapid Innovation Group

Former Member
‎10-31-2013 8:06 AM
0 Kudos

Version 1.2.0 of My Spend and SAPUI5 1.14.0

As soon as the application loads, the popup shows.

When I check the load with F12 in chrome I can see there is another call the the same service. But just a GET for all collections ([Users, SpendingDataCollection, HierarchyNodes, Notes, GeneralParameters]), which does work. And it also gets back a csrf token.

What I do notice, is that it gets called AFTER the $batch call which has the csrf token error ...

Ask a Question